create an CLI script to enable/disable the vulnerability feature

Reply
Highlighted
L0 Member

create an CLI script to enable/disable the vulnerability feature

How to create an script to enable/ disable the vulnerability feature on all the objects.

Thank you

L1 Bithead

Re: create an CLI script to enable/disable the vulnerability feature

Are you asking if this can be done, how this can be done, or if someone will do it for you?

L0 Member

Re: create an CLI script to enable/disable the vulnerability feature

I just need to know how can be done , and if some one has it , and please send it to me (Nguyen_Chau@allergan.com).

Thank you

L5 Sessionator

Re: create an CLI script to enable/disable the vulnerability feature

Hi Chau,

 

you need to script out following commands in language of your choice:

1. login into device,

2. issue commands:

 

set cli config-output-format set
configure
delete rulebase security rules YOUR_RULE_NAME profile-setting profiles vulnerability
commit
exit
exit

You need to wait for output of the commit to verify you deleted that part of the rule properly and of course you need to replace "YOUR_RULE_NAME" with exact title of your own rule, but other than that you don't need much more.

In order to set the profile back, you need a command

set rulebase security rules YOUR_RULE_NAME profile-setting profiles vulnerability YOUR_VULNERABILITY_PROFILE_NAME

and all other mentioned above (set cli config-output, configure, set..., commit, exit, exit). Succesfull commit should always return a string "Configuration committed successfully" among other stuff.

 

Best regards,


Luciano

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!